CVE-2026-53676EPSS p51.8%

CVE-2026-53676CVE-2026-53676

Description

ThingsBoard contains a prototype pollution vulnerability which may lead to arbitrary code execution within a sandboxed context by a user who can log in to the affected product with the tenant administrator privilege (TENANT_ADMIN).

Scoring

CVSS 7.2 ()
VectorCVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS0.80% probability of exploitation · percentile 51.8% · 2026-06-19T12:03:05Z
Last modified2026-06-18
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.